CVE-1999-0048Netkit vulnerability

3 documents3 sources
Severity
10.0CRITICALNVD
EPSS
1.9%
top 16.82%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Debian NetkitIBM AIX
Timeline
PublishedJan 27
Latest updateApr 30

Description

Talkd, when given corrupt DNS information, can be used to execute arbitrary commands with root privileges.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

NVDibm/aix3.1, 4.1, 4.2+2
NVDdebian/netkit0.07

🔴Vulnerability Details

2
GHSA
GHSA-gpx4-x6pm-ch4q: Talkd, when given corrupt DNS information, can be used to execute arbitrary commands with root privileges2022-04-30
CVEList
CVE-1999-0048: Talkd, when given corrupt DNS information, can be used to execute arbitrary commands with root privileges1999-09-29
CVE-1999-0048 — Debian Netkit vulnerability | cvebase